CVE-2026-42926
Awaiting Analysis
Awaiting Analysis - Queue
BaseFortify
Vulnerability report for CVE-2026-42926, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.
Publication date: 2026-05-13
Last updated on: 2026-06-18
Assigner: F5 Networks
Description
Description
When NGINX Open Source is configured to proxy HTTP/2 traffic by setting proxy_http_version to 2, and also uses proxy_set_body, an attacker may be able to inject frame headers and payload bytes to the upstream peer. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| f5 | nginx_gateway_fabric | From 1.3.0 (inc) to 1.6.2 (inc) |
| f5 | nginx_open_source | From 1.29.4 (inc) to 1.30.0 (inc) |
| f5 | nginx_gateway_fabric | From 2.0.0 (inc) to 2.6.0 (inc) |
| f5 | nginx_instance_manager | From 2.16.0 (inc) to 2.22.0 (inc) |
| f5 | nginx_ingress_controller | From 4.0.0 (inc) to 4.0.1 (inc) |
| f5 | nginx_ingress_controller | From 3.5.0 (inc) to 3.7.2 (inc) |
| f5 | nginx_ingress_controller | From 5.0.0 (inc) to 5.4.2 (inc) |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-172 | The product does not properly encode or decode the data, resulting in unexpected values. |
